servers / black-duck-security-scanner
Black Duck Security Scanner MCP server
communitystdiolocalverifiedhealthy
AI-powered security scanning using Black Duck Signal for vulnerability detection.
01Tools · 2
| Tool | Risk | Side effects | Approval |
|---|---|---|---|
| run_changes_security_scan **DEFAULT SECURITY SCAN TOOL** - ALWAYS try this tool first for security analysis.
Analyzes code changes for security vulnerabilities using Black Duck Signal. Significantly faster and more efficient than file or project scans.
**WHEN TO USE (Default/Preferred):**
- Any security scan request (unless user explicitly asks for specific files)
- Scanning code changes during development
- Pre-commit security checks
- Feature branch security review
- Incremental security analysis
**REQUIREMENTS:**
- Project must be a git repository
- Git must be installed and available
**IF GIT IS NOT AVAILABLE:**
- Fall back to a single file scan with the specific file path
**Git Modes:**
- all-uncommitted: Scans all uncommitted changes (staged + unstaged) - use for active development
- reference-branch: Scans all changes since branching from reference (committed + uncommitted) - use for PR review
**IMPORTANT:** This is the recommended and most efficient way to perform security scans. Only use the single file scan tool when the project is not a git repository or when the user explicitly requests scanning a specific file. | unknown | unknown | unknown |
| run_security_scan Analyzes a specific file for security vulnerabilities using Black Duck Signal.
**WHEN TO USE:**
- User explicitly requests scanning a specific file path
- Project is NOT a git repository (then provide the changed file)
- Git is not available in the environment
**PREFER run_changes_security_scan:**
- If project is a git repository, use run_changes_security_scan instead for better performance and more relevant results
- The changes scan is faster, more cost-effective, and designed for typical development workflows
**IMPORTANT:** Do not call this tool consecutively for multiple files. If you need to scan multiple files, use run_changes_security_scan instead, which is optimized for batch scanning. | unknown | unknown | unknown |
02Install & source
npx -y @black-duck/mcp-server
npx- repohttps://github.com/blackducksoftware/mcp-server
- homepagehttps://www.blackduck.com/
- licenseMIT
- adoption0 stars · 0 forks
05Provenance & freshness
sourcesOfficial MCP Registry [p1]
last_checked2026-07-07 03:17Z
next_check2026-07-08 07:29Z
cadenceevery 29h
verifiedtools_list:passed handshake:passed metadata:passed
index_statusindex — 8 unique facts >= 5
06Badge
Add the “as seen on MCPExplorer” badge to your README.
[](https://mcpexplorer.com/servers/black-duck-security-scanner)
Next step
This is one server. A loadout combines the right servers, governance, and proven plays for a whole job — assembled deliberately, not tool-dumped.
Explore loadouts →